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1 A taxonomy for key escrow encryption systems 
/£k Dorothy E. Denning, Dennis K. Branstad 

March 1996 Communications of the ACM, volume 39 issue 3 

Publisher: ACM Press 

Full text available: *g pdf(548.67 KB) Additional Information: full citation , citings , index terms , review 



2 Communications privacy: implications for network design 
Marc Rotenberg 

August 1993 Communications of the ACM, volume 36 issue 8 
Publisher: ACM Press 

Full text available: ^]pdf(2.91 MB) Additional Information: full citation , references , index terms , review 



Inside risks: risks of insiders 
Peter G. Neumann 

December 1999 Communications of the ACM, volume 42 issue 12 
Publisher: ACM Press 

Full text available:^df(45.43 KB> Addjtjona| |nformatjon: ful , citation , citings, index terms 
|,qf| ntmlu.oo KB) 



4 Wireless sensor networks: An efficient key establishment scheme for secure 

aggregating sensor networks 
Erik-Oliver BlaB, Martina Zitterbart 

March 2006 Proceedings of the 2006 ACM Symposium on Information, computer and 
communications security ASIACCS "06 

Publisher: ACM Press 

Full text available: ^ pdf(252.38 KB) Additional Information: full citation , abstract , references , index terms 

Key establishment is a fundamental prerequisite for secure communication in wireless 
sensor networks. A new node joining the network needs to efficiently and autonomously 
set up secret keys with his communication partners without the use of a central 
infrastructure. Most cited current research papers focus on a probabilistic distribution of 
sets of keys from larger key pools to new nodes. This results in unnecessary expensive 
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communication and memory consumption, growing linearly with the ... 
Keywords: aggregation, efficiency, key establishment, sensor networks 



5 Verifiable partial key escrow 
Mihir Bellare, Shafi Goldwasser 

April 1997 Proceedings of the 4th ACM conference on Computer and communications 

security CCS '97 
Publisher: ACM Press 

Full text available: ^||pdf(1.98 MB) Additional Information: full citation , references , citings, index terms 
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Cr y pto graphic key management 
Dahl A. Gerberick 

May 1990 ACM SIGSAC Review, volume 8 issue 2 
Publisher: ACM Press 

Full text available: |j?| pdfl962.96 KB) Additional Information: full citation , abstract , index terms 

There are two main issues concerning data security on networks; controlling access and 
the vulnerability of data communication links. A brief introduction to the various 
techniques which may be applied to these concerns are given in this paper. 

Commentators 

Mike Godwin, William A. Bayse, Marc Rotenberg, Lewis M. Branscomb, Anne M. Branscomb, 

Ronald L. Rivest, Andrew Grosso, Gary T. Marx 

March 1993 Communications of the ACM, volume 36 issue 3 

Publisher: ACM Press 

Full text available: ||| pdf(6.12 MB) Additional Information: full citation , references , inc 



8 Multi party computations: past and present Q 
Shafi Goldwasser 

August 1997 Proceedings of the sixteenth annual ACM symposium on Principles of 
distributed computing PODC '97 

Publisher: ACM Press 

Full text available: ||] pdf(439.35 KB) Additional Information: full citation , references , citings , index terms 




9 A pplied cryptography II: Stateful public-key cryptosystems: how to encrypt with one I I 

^ 160-bit exponentiation 

^ Mihir Bellare, Tadayoshi Kohno, Victor Shoup 

October 2006 Proceedings of the 13th ACM conference on Computer and 
communications security CCS '06 

Publisher: ACM Press 

Full text available: ^| pdf(235.26 KB) Additional Information: full citation , abstract , references , index terms 

We show how to significantly speed-up the encryption portion of some public-key 
cryptosystems by the simple expedient of allowing a sender to maintain state that is re- 
used across different encryptions. In particular we present stateful versions of the DHIES 
and Kurosawa-Desmedt schemes that each use only 1 exponentiation to encrypt, as 
opposed to 2 and 3 respectively in the original schemes, yielding the fastest discrete-log 
based public-key encryption schemes known in the random-oracle and stan ... 
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Keywords: cryptography, public-key encryption 



10 Data protection: Attribute-based encryption for fine-grained access control of 
A> encrypted data 

^ Vipul Goyal, Omkant Pandey, Amit Sahai, Brent Waters 

October 2006 Proceedings of the 13th ACM conference on Computer and 

communications security CCS '06 
Publisher: ACM Press 

Full text available: l g pdf(277.46 KB) Additional Information: full citation , abstract , references , index terms 

As more sensitive data is shared and stored by third-party sites on the Internet, there will 
be a need to encrypt data stored at these sites. One drawback of encrypting data, is that 
it can be selectively shared only at a coarse-grained level (i.e., giving another party your 
private key). We develop a new cryptosystem for fine-grained sharing of encrypted data 
that we call Key-Policy Attribute-Based Encryption (KP-ABE). In our cryptosystem, 
ciphertexts are labeled with sets of attributes and pri ... 

Keywords: access control, attribute-based encryption, audit logs, broadcast encryption, 
delegation, hierarchical identity-based encryption 
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11 Data protection: Searchable symmetric encryption: improved definitions and efficient I I 
constructions 

Reza Curtmola, Juan Garay, Seny Kamara, Rafail Ostrovsky 
October 2006 Proceedings of the 13th ACM conference on Computer and 

communications security CCS '06 
Publisher: ACM Press 

Full text available: ^p| pdf(682.4Q KB ) Additional Information: full citation , abstract , references , index terms 

Searchable symmetric encryption (SSE) allows a party to outsource the storage of its data 
to another party (a server) in a private manner, while maintaining the ability to 
selectively search over it. This problem has been the focus of active research in recent 
years. In this paper we show two solutions to SSE that simultaneously enjoy the following 
properties: 

1. Both solutions are more efficient than all previous constant-round schemes. In 
particular, the work performed by the server per r ... 

Keywords: multi-user, searchable encryption, searchable symmetric encryption, 
security definitions 




12 Breaking and provably repairin g the SSH authenticated encryption scheme: A case 
^ study of the Encode-then-Encrypt-and-MAC paradigm 
^ Mihir Bellare, Tadayoshi Kohno, Chanathip Namprempre 

May 2004 ACM Transactions on Information and System Security (TISSEC), volume 7 
Issue 2 

Publisher: ACM Press 

Additional Information: full citation , abstract , references , index terms . 



Full text available: 

^ review 

The secure shell (SSH) protocol is one of the most popular cryptographic protocols on the 
Internet. Unfortunately, the current SSH authenticated encryption mechanism is insecure. 
In this paper, we propose several fixes to the SSH protocol and, using techniques from 
modern cryptography, we prove that our modified versions of SSH meet strong new 
chosen-ciphertext privacy and integrity requirements. Furthermore, our proposed fixes 
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will require relatively little modification to the SSH protoc ... 

Keywords: Authenticated encryption, secure shell, security proofs, stateful decryption 



13 Verifiable encryption of digital signatures and applications Q 
^ Giuseppe Ateniese 

v 7 February 2004 ACM Transactions on Information and System Security (TISSEC), volume 
7 Issue 1 
Publisher: ACM Press 

Full text available: ^|| pdf(258.12 KB) Additional Information: full citation , abstract , references , index terms 

This paper presents a new simple schemes for verifiable encryption of digital signatures. 
We make use of a trusted third party (TTP) but in an optimistic sense, that is, the TTP 
takes part in the protocol only if one user cheats or simply crashes. Our schemes can be 
used as primitives to build efficient fair exchange and certified e-mail protocols. 

Keywords: Certified e-mail, contract signing, digital signatures, fair exchange, proof of 
knowledge, public-key cryptography 



14 Image processing: The encryption method to share a secret binary image and its 
decryption system 

Sang-su Lee, Jong-wook Han, Hyo-wook Bae 

September 2003 Proceedings of the 1st international symposium on Information and 
communication technologies ISICT '03 

Publisher: Trinity College Dublin 

Full text available: ^g pdf( 156,34 KB) Additional Information: full citation , abstract, references 

In this paper, an encryption method to share a secret binary image was proposed. This 
divides the image to be encrypted into an arbitrary number of images and encrypts them 
using XOR process with different binary random images which was prepared by the means 
of the XOR process, too. Each encrypted slice image can be distributed to the 
authenticated ones. However, we transfer the encrypted images to the binary phase 
masks to strengthen the security power, that means phase masks can not be copied ... 

Keywords: cryptography, data security, image reconstruction, optical imaging 



15 Efficient Memory Integrity Verification and Encryption for Secure Processors Q 
G. Edward Suh, Dwaine Clarke, Blaise Gassend, Marten van Dijk, Srinivas Devadas 

December 2003 Proceedings of the 36th annual IEEE/ACM International Symposium 

on Microarchitecture MICRO 36 
Publisher: IEEE Computer Society 

Full text available: ^ pdf(307.Q1 KB) Additional Information: full citation , abstract , citings, index terms 

Secure processors enable new sets of applications suchas commercial grid computing, 
software copy-protection, and secure mobile agents by providing security from 
bothphysical and software attacks. This paper proposes newhardware mechanisms for 
memory integrity verification andencryption, which are two key primitives required in 
single-chipsecure processors. The integrity verification mechanismoffers significant 
performance advantages over existingones when the checks are infrequent as in grid 
com ... 

16 Embedded applications: Encryption overhead in embedded systems and sensor □ 
<^ network nodes: modeling and analysis 

Ramnath Venugopalan, Prasanth Ganesan, Pushkin Peddabachagari, Alexander Dean, Frank 
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Mueller, Mihail Sichitiu 

October 2003 Proceedings of the 2003 international conference on Compilers, 
architecture and synthesis for embedded systems CASES '03 

Publisher: ACM Press 

Full text available' « pdf(293.59 KB) Additional Information: full citation , abstract, references, citings, index 
^ terms 

Recent research in sensor networks has raised issues of security for small embedded 
devices. Security concerns are motivated by the deployment of a large number of sensory 
devices in the field. Limitations in processing power, battery life, communication 
bandwidth and memory constrain the applicability of existing cryptography standards for 
small embedded devices. A mismatch between wide arithmetic for security (32 bit word 
operations) and embedded data bus widths (often only 8 or 16 bits) combi ... 

Keywords: embedded systems, encryption, security, sensor networks 

17 Supporting cryptographic technology: Broadcast encryption with short keys and I I 
<g> transmissions 

^ Nuttapong Attrapadung, Kazukuni Kobara 

October 2003 Proceedings of the 3rd ACM workshop on Digital rights management 

DRM 03 
Publisher: ACM Press 

Full text available: ppdf(269.23 KB) Additional lnformation: citation , ^« references, dtings, index 

terms 

Broadcast Encryption allows a broadcaster to broadcast an encrypted message so that 
only a dynamically changing designated group of users can decrypt it. The stateless 
setting considers the case where the private key at each user is never updated. A central 
open problem in this area is to design a stateless scheme where both the size of 
transmission header which encapsulates the session key and the size of private key at 
each user are small and independent of the number of users (all/priv ... 

Keywords: broadcast encryption, constant transmission rate, copyright protection, one- 
way accumulators, revocation scheme 

18 Security: Analyzing and modelin g encryption overhead for sensor network nodes Q 
Prasanth Ganesan, Ramnath Venugopalan, Pushkin Peddabachagari, Alexander Dean, Frank 
Mueller, Mihail Sichitiu 

September 2003 Proceedings of the 2nd ACM international conference on Wireless 
sensor networks and applications WSNA '03 

Publisher: ACM Press 

Full text available: «| pdft254.57 KB) Additional Information: full citation , abstract, references , dtings, index 

terms 

Recent research in sensor networks has raised security issues for small embedded 
devices. Security concerns are motivated by the deployment of a large number of sensory 
devices in the field. Limitations in processing power, battery life, communication 
bandwidth and memory constrain the applicability of existing cryptography standards for 
small embedded devices. A mismatch between wide arithmetic for security (32 bit word 
operations) and embedded data bus widths (often only 8 or 16 bits) combined ... 

Keywords: analysis, embedded systems, encryption overhead, model, sensor networks 

19 OCB: A block-cipher mode of operation for efficient authenticated encryption Q 
Phillip Rogaway, Mihir Bellare, John Black 
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August 2003 ACM Transactions on Information and System Security (TISSEC), volume 6 

Issue 3 
Publisher: ACM Press 

Full text available: pdf(568.74 KB) Additional Information: full citation , abstract , references , index terms 

We describe a parallelizable block-cipher mode of operation that simultaneously provides 
privacy and authenticity. OCB encrypts-and-authenticates a nonempty string M &in; 
&lcub;0, l&rcub;* using □&vertbar;M&vertbar;/nD + 2 block-cipher invocations, where n 
is the block length of the underlying block cipher. Additional overhead is small. OCB 
refines a scheme, IAPM, suggested by Charanjit Jutla. Desirable properties of OCB include 
the ability to encrypt a bi ... 

Keywords: AES, authenticity, block-cipher usage, cryptography, encryption, integrity, 
modes of operation, provable security, standards 



20 Im plementin g encr y pted home directories Q 
Mike Petullo 

August 2003 Linux Journal, volume 2003 issue 112 
Publisher: Specialized Systems Consultants, Inc. 

Full text available: g| html(19.37 KB) Additional Information: full citation , abstract 

Keep your files safely encrypted when you're logged out, and automatically get access 
when you log in. 
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